---

Microsoft Sovereign Cloud Solutions July 2025 Update: Your Cloud, Your Rules

---

Back in April, I shared my perspective on Microsoft’s Sovereign Cloud strategy and the four “flavors” of control available to European organizations. Since then, things have moved fast.

On June 16, 2025, Microsoft announced the next evolution: a suite of comprehensive sovereign solutions designed to give European enterprises more control, more choice, and more flexibility across both public and private infrastructure.

As “Mr. Microsoft,” I see this as more than a technical update. It’s a game-changer.

Let’s dive in.

---

Recap: The Four Flavors of Cloud Control

---

In case you missed my April post, here’s a quick refresher on Microsoft’s sovereignty model:

• Microsoft Public Cloud – The global, highly scalable Azure platform.
• Microsoft Cloud for Sovereignty – Full control over encryption keys, managed and operated under European law.
• National Partner Clouds – Bleu in France and Delos Cloud in Germany—locally operated and partner-run sovereign environments.
• Azure Local – Azure services deployed directly on your own hardware, within your own datacenter.

These four flavors have become the foundation of Europe’s sovereign cloud story.

---

Spotlight: Microsoft 365 Local

---

Here’s where things get really interesting.

With Microsoft 365 Local, Microsoft brings its productivity powerhouses—Exchange, SharePoint, Teams, and more—into your hands like never before.

Forget simply choosing a regional datacenter. With Microsoft 365 Local, you can now deploy your productivity workloads entirely within your own datacenter, a partner-operated sovereign cloud and even in an air-gapped, disconnected environment

And yes, it’s real.

What does this mean?

• Full deployment control: You decide where your workloads live and how they run.
• Simplified management: Azure Local tooling and Microsoft 365 now work together in a unified framework.
• Enterprise-grade resilience: Ideal for critical sectors like government, healthcare, and defense

In short:
Microsoft 365 Local empowers your organization to maintain full sovereignty without losing modern productivity tools.

It’s Microsoft 365 on your terms.

---

What Else Is New? Building a Complete Sovereign Portfolio

---

Beyond Microsoft 365 Local, Microsoft’s June update introduced three new pillars of control and security across the entire Sovereign Cloud ecosystem:

🛡️ Data Guardian

• Extends Microsoft’s EU Data Boundary.
• Ensures only European personnel can approve or monitor remote access to your workloads.
• Access requests? Logged in a tamper-evident ledger for full auditability.

🔑 External Key Management

• Bring Your Own Key (BYOK)—now at hyperscale.
• Manage encryption keys from your own HSM (on-premises or third-party).
• Seamlessly integrated with Azure Managed HSM, supporting vendors like Thales, Utimaco, and Futurex.

📊 Regulated Environment Management

• One console. Total control.
• Monitor, configure, and govern all your sovereign features—Data Guardian policies, access logs, and compliance controls—from a single pane of glass.

Meanwhile, Microsoft’s National Partner Clouds remain key pillars:

• Bleu (France): Built with Orange and Capgemini, meeting SecNumCloud standards.
• Delos Cloud (Germany): Operated by SAP, aligned with German government platform requirements.

To complete the ecosystem, Microsoft is introducing a Sovereign Cloud Specialization for partners, ensuring certified local experts can design, deploy, and operate these complex sovereign architectures.

Read the full anouncement from Microsoft here.

---

Choosing Your Sovereign Path

---

Let’s talk strategy.

Microsoft’s sovereign cloud model now offers the broadest choice in the industry, spanning:

• Sovereign Public Cloud – Azure, Microsoft 365, Security, and Power Platform services, operated under European law.
• Sovereign Private Cloud – Microsoft 365 Local and Azure Local, running in your datacenter or air-gapped environments.
• National Partner Clouds – Partner-operated sovereign environments for France and Germany.

Whether your focus is:

• Full control over encryption,
• Restricting data access to European personnel only,
• Operating workloads in fully isolated, air-gapped infrastructures,

…you now have the flexibility to build sovereignty your way.

---

Why Sovereignty Isn’t Just About Compliance

---

Let’s be clear:
Sovereignty is no longer a checkbox exercise.

It’s about:

• Strategic alignment to national regulations and security standards,
• Mitigating geopolitical risks,
• Controlling operational dependencies,
• And creating resilience that supports your long-term mission.

For governments, critical infrastructure providers, healthcare organizations, and financial services, the stakes couldn’t be higher.

Microsoft’s expanded Sovereign Cloud solutions finally allow you to pursue digital transformation without surrendering control.

---

Final Thoughts from Mr. Microsoft

---

For years, data sovereignty was seen as a blocker. Something that slowed innovation.

Not anymore.

With Microsoft 365 Local and the expanded sovereign portfolio, Microsoft has rewritten the rules. You no longer need to choose between modern cloud functionality and operational sovereignty.

It’s now possible to have both.

As “Mr. Microsoft”, I see this as a defining moment that is not just for compliance teams but for IT leaders, architects, and business strategists across Europe.

The cloud just became your cloud.

Stay clever. Stay Sovereign.
Your Mr. Microsoft,
Uwe Zabel

---

🚀 Curious about Microsoft 365 Local or Sovereign Cloud solutions? Follow my journey on zabu.cloud, where cloud, compliance, and business strategy converge. Or ping me directly because building the future works better as a team.